Malware Campaign Extorts Users with SOPA Threats

A new scareware-ransomware hybrid attempts to convince users they are being sued in violation of the Stop Online Piracy Act (SOPA) and offers to remedy the problem if users purchase a fake antivirus solution.

The malware claims to have detected illegal torrent files on the computer and offers to circumvent the problem by activating an anonymous data transfer protocol, according to The Register.

SFX Fake AV was first detected by the free antivirus scanner, Malwarebytes. The malware reportedly disables any actual antivirus software on an infected machine, shuts off the Process Explorer program, and impedes browser access. It then prompts infected users to hand over their credit card information as payment for fake security solution.

“SFX Fake AV is morphing at a relatively fast rate, so it is something that signature-based vendors will have to watch out for as there will be an increasing number of variants in the wild,” Bruce Harrison of Malwarebytes told The Register. “Also, the use of Dropbox as a delivery mechanism is a something that the industry is going to have to take into account and protect against, as it is an emerging trend.”

Similar schemes are somewhat common, though the ransomware and scareware we’ve reported on in the past generally tries to convince victims that there is something more menacing on their machine, like child pornography.

About Brian Donohue

“We are what we pretend to be, so we must be careful about what we pretend to be.” ― Kurt Vonnegut

A modern smartphone is a full-blown working tool, an entertainment center and a tool to manage your personal finances. The more it can do, the more attractive it is to cybercriminals. The evidence for...

Cybercriminals go at great lengths to throw researchers off their scent, but just like in the "offline" crime world they make errors and leave peculiar traces behind, making them look a bit silly, whi...

By Maria Karnaukh Genius is often simple. Those ideas that ultimately reap millions of dollars are usually found hiding in plain view – unnoticed until their time is right. Here are several examples o...